From the course: API Testing Foundations
Unlock the full course today
Join today to access over 23,400 courses taught by industry experts.
Challenge: Access protected endpoints - Postman Tutorial
From the course: API Testing Foundations
Challenge: Access protected endpoints
(quirky music) - [Instructor] Now that you know how to test the various API endpoints, it's time for another hands-on testing challenge. The to-do application has a protected endpoint here called user/admin. You can see on the Authorization tab that I've got a token specified. And if I send this, it says, "The user cannot access this endpoint." So this token is for user1. And as a reminder, you can get this token using the /token endpoint and putting in the username and password. Your challenge is to see if you can access the data behind the admin endpoint. Presumably, if you want to access that data, you're going to need an admin token. Your challenge is to see if you can get access to the information behind this endpoint. You won't need any advanced security testing skills to solve this challenge. You should be able to access the information using only things that you've already learned in this course. Now, I'll…
Contents
-
-
-
-
-
-
(Locked)
Testing GET calls3m 42s
-
(Locked)
Testing PUT calls3m 25s
-
(Locked)
Testing DELETE calls2m 46s
-
(Locked)
Challenge: Break the API1m 43s
-
(Locked)
Solution: Break the API2m 31s
-
(Locked)
Understanding POST calls3m 55s
-
(Locked)
Testing POST calls4m 27s
-
(Locked)
Challenge: Access protected endpoints1m 32s
-
(Locked)
Solution: Access protected endpoints2m 36s
-
(Locked)
-
-